Denyhosts is described as 'The idea of denying access to SSH servers is nothing new and I was inspired by many other scripts that I discovered. However, none of them did things the way I envisioned them to. Also, they were all shell scripts which do not offer the elegance of Python' and is an app in the network & admin category. There are more than 10 alternatives to Denyhosts for a variety of platforms, including Linux, Windows, Self-Hosted, Mac and Web-based apps. The best Denyhosts alternative is CrowdSec. It's not free, so if you're looking for a free alternative, you could try CrowdSec or Fail2ban. Other great apps like Denyhosts are IPBanPro, reaction, RdpGuard and SpyLog.
CrowdSec is a security automation engine, using both local IP behavior detection & our community-driven IP reputation database.
CrowdSec is the most popular Linux & Self-Hosted alternative to Denyhosts.
CrowdSec is the most popular Open Source & free alternative to Denyhosts.
Fail2ban scans log files (e.g. /var/log/apache/error_log) and bans IPs that show the malicious signs -- too many password failures, seeking for exploits, etc. Generally Fail2Ban is then used to update firewall rules to reject the IP addresses for a specified amount of time...
SSHGuard monitors services through their logging activity. It reacts to messages about dangerous activity by blocking the source address with the local firewall. SSHGuard employs a clever parser that can transparently recognize several logging formats at once (syslog, syslog-ng...
SSHGuard is the most popular Mac alternative to Denyhosts.
IPBan is a FREE and open source application that allows auto banning ip addresses from failed login attempts. Many sources are watched such as SSH, SMTP, SQL-Server, MySQL, RDP and dropped packets.
IPBanPro is the most popular Windows alternative to Denyhosts.
IPBanPro is the most popular commercial alternative to Denyhosts.
RdpGuard allows you to protect your Remote Desktop (RDP) from brute-force attacks by blocking attacker's IP address. Fail2Ban for Windows.
Monitor logs from several sources and execute actions based on some rules. Can be used to protect against brute-force attacks.
IPQ BDB filtering is done by a user space netfilter daemon that issues verdicts after looking up the IP address in a Berkeley DB. The fuzzy blocking model, freely inspired by STOCKADE, is designed to block non-distributed dictionary attacks and mitigate spam.
Out-of-the-box security for Remote Deskop, Exchange, OWA, SharePoint, CRM, generic IIS applications and many other server systems.
Light-weight and extra-configurable peruser of systemd journal logs: ban IP, send immediate email, daily report… all based on a single JSON configuration file.
Built to react fast in server farms environments (ISPs, HSPs, organisations...) Hookem-Banem is a log monitoring system which monitors logs being sent to a central server (syslog, file...) and on detection of malicious intent (repeated login failures, many failed RCPT commands...
France
EU
United States
Germany